[Freeipa-users] error while adding conditional forwarder for AD domain
Martin Basti
mbasti at redhat.com
Wed Apr 13 10:56:54 UTC 2016
On 13.04.2016 10:59, Ben .T.George wrote:
> Hi LIst,
>
> getting below error while adding conditional forwarder for AD domain
> on IPA
>
> [root at ipa ~]# ipa dnsforwardzone-add ad.example.com
> <http://ad.example.com> --forwarder=192.168.37.131 --forward-policy=only
> Server will check DNS forwarder(s).
> This may take some time, please wait ...
> ipa: ERROR: DNS check for domain ad.example.com
> <http://ad.example.com>. failed: All nameservers failed to answer the
> query ad.example.com <http://ad.example.com>. IN SOA: Server 127.0.0.1
> UDP port 53 anwered The DNS operation timed out.; Server 127.0.0.1 UDP
> port 53 anwered The DNS operation timed out.; Server 127.0.0.1 UDP
> port 53 anwered The DNS operation timed out.; Server 127.0.0.1 UDP
> port 53 anwered The DNS operation timed out.; Server 127.0.0.1 UDP
> port 53 anwered SERVFAIL.
>
> how to fix this issue.
>
> Operating system : CentOs 7.2
> IPA VERSION: 4.3.1, API_VERSION: 2.164
>
> Thanks & Regards
> Ben
>
>
>
Hello,
that timeout error is suspicious, are all IPA DNS working?
can you try
dig @youripaserveraddress ad.example.com SOA
and post result?
Martin
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20160413/3273cc2c/attachment.htm>
More information about the Freeipa-users
mailing list